Skip to content

Pulsar auth parameters don't properly encode JSON values #40493

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

Pulsar auth parameters don't properly encode JSON values #40493

wants to merge 1 commit into from

Conversation

@onobc
Copy link
Contributor

@onobc onobc commented Apr 23, 2024

The values in the spring.pulsar.client.authentication.param config props map are not currently JSON encoded. For simple values this is fine. However, some custom auth modules may require more complex parameter values that may contain special characters that results in invalid JSON. This commmit encodes the parameter values using a very simple hand-rolled escape function.

Fixes #40492
@onobc
Encode JSON string in Pulsar auth params
df1845c 
The values in the `spring.pulsar.client.authentication.param` config props map are not currently JSON encoded. For simple values this is fine. However, some custom auth modules may require more complex parameter values that may contain special characters that results in invalid JSON. This commmit encodes the parameter values using a very simple hand-rolled escape function. Fixes spring-projects#40492
@spring-projects-issues spring-projects-issues added the status: waiting-for-triage An issue we've not yet triaged label Apr 23, 2024
@philwebb philwebb mentioned this pull request Apr 23, 2024
Closed
@philwebb philwebb added type: regression A regression from a previous release and removed status: waiting-for-triage An issue we've not yet triaged labels Apr 23, 2024
@philwebb philwebb added this to the 3.2.x milestone Apr 23, 2024
onobc
onobc commented Apr 23, 2024
View reviewed changes
...gure/src/main/java/org/springframework/boot/autoconfigure/pulsar/PulsarPropertiesMapper.java
}
}

private String escapeJson(String raw) {
Copy link
Contributor Author

@onobc onobc Apr 23, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Because we do not directly bring in a JSON library (e.g. Gson or Jackson) we can not use the simple facilities that these libs have to "encode a JSON string".

Here were the options:

Use JSON lib

Add required dependency on Jackson or Gson and use their built-in methods

  • ✅ solid encode impl maintained by JSON lib
  • ❌ ❌ ❌ have to bring in direct dep on JSON lib and this forces it upon our users (not an option)

Add feature to Spring Boot JsonParser

Add "encode a JSON string" to our JsonParser abstraction

  • ✅ can be used in other areas of Spring Boot codebase
  • ❌ created and maintained by us (more work)
  • ❌ impl no more solid than if it were a private impl inside the mapper
  • ❌ nowhere else in the Boot codebase needs this AFAIK

Hand-roll basic encoder

Inline a simple encode JSON facility in the mapper.

  • ❌ basic impl maintained by us
  • ❌ ✅ not a perfect solution but will solve the majority of the cases
  • ✅ ✅ no direct dep on JSON lib
  • ✅ private impl localized to the mapper
onobc
onobc commented Apr 23, 2024
View reviewed changes
...src/test/java/org/springframework/boot/autoconfigure/pulsar/PulsarPropertiesMapperTests.java
PulsarProperties properties = new PulsarProperties();
Map<String, String> params = Map.of("param", "name");
String authParamString = "{\"param\":\"name\"}";
Map<String, String> params = Map.of("simpleParam", "foo", "complexParam",
Copy link
Contributor Author

@onobc onobc Apr 23, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We are not exhausting all possible replacements characters but are covering the majority.

@philwebb should we add a bit more coverage here?
Copy link
Contributor

@mhalbritter mhalbritter May 22, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm not Phil, but I think this is fine :)
@mhalbritter mhalbritter self-assigned this May 22, 2024
@mhalbritter mhalbritter changed the title Encode JSON string in Pulsar auth params Pulsar auth parameters doesn't properly encode JSON values May 22, 2024
@mhalbritter mhalbritter changed the title Pulsar auth parameters doesn't properly encode JSON values Pulsar auth parameters don't properly encode JSON values May 22, 2024
@mhalbritter mhalbritter mentioned this pull request May 22, 2024
Closed
mhalbritter pushed a commit that referenced this pull request May 22, 2024
@onobc @mhalbritter
Encode JSON string in Pulsar auth params
7a7bcd0 
The values in the `spring.pulsar.client.authentication.param` config props map are not currently JSON encoded. For simple values this is fine. However, some custom auth modules may require more complex parameter values that may contain special characters that results in invalid JSON. This commmit encodes the parameter values using a very simple hand-rolled escape function. See gh-40493
@mhalbritter
Copy link
Contributor

mhalbritter commented May 22, 2024

Thanks Chris!
@mhalbritter mhalbritter modified the milestones: 3.2.x, 3.2.6 May 22, 2024
@onobc onobc deleted the gh-40492-pulsar-auth-param-encoding branch May 28, 2024 21:19
@philwebb philwebb mentioned this pull request Jul 15, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

type: regression A regression from a previous release

4 participants

@onobc @mhalbritter @philwebb @spring-projects-issues